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IN THE CLAIMS : 

Please amend the claims as indicated below 

1 (Currently Amended) A computet -implemented method for authenticating 
a user to one or more groups, said method comprising the steps of: 

computationally verifying an identity of said user; and 
computationally verifying a membership of said user with said one or 
more groups, wherein said verifying computations are performed substantially 
simultaneously using a single cryptographic operation and user' information stored in a 
computer file that is local to said user 

2 (Original) The method of claim 1, further comprising the step of 
registering said user with at least one of said one or more groups 

3 . (Original) The method of claim 2, wherein said registering step further 

comprises the step of said user and said at least one of said one or mote groups 
exchanging a respective identifier , 

4 (Original) The method of claim 3, wherein said user identifier is expressed 
as follows: 

IDj=g x > h modp, 

where g and Xi are randomly generated numbers, and h is a hash function on a random 
number concatenated with information of said user, U. 

5 (Original) The method of claim 3 3 wherein said identifier of said at least 
one of said one or more groups is expressed as follows: 

Gi =g k i h modp, 

where g and ki are randomly generated numbers, and h is a hash function on a random 
number 1 concatenated with information of said user, U 
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6 (Original) The method of claim 2, wherein said registering step further 
comprises the step of creating a registration identifier' 

7 (Original) The method of claim 6, wherein said registering step between 
said user, U, and said at least one of said one or more groups, Gj, further comprises the 
step of creating a registration identifier, (G u SO, where (Si = g si ), § is a randomly 
generated number' and. Sj is obtained as follows: 

s^xft-kfiG mod(p-l) 

8 (Original) The method of claim 1, wherein said user identity and 
membership are verified if: 

GV (ll) =n^' s modp, 

wherein said user is identified by an identifier, ID i? equal to g Xih mod p, said one or more 

groups are identified by an identifier, Gi, equal to g k i h , V(r 9 s)=Yt s i +r > 1 is a randoml y 

selected wrap value, mod p, g and Xj are randomly generated numbers, h is a hash 
function on a random number concatenated with user information and s, is obtained as 
follows: 

s^x.h-kftG mod(jp-l) . 

9 (Original) The method of claim 1, wherein said verifying computations are 
performed in a single operation based on the El Gomal public key algorithm 

10, (Original) The method of claim 1, wherein said user information is stored 

on a smart card that provides tamper-resistant features 



1 1 (Original) The method of claim 1, wherein said user information is stored 

in a memory of a computer , 
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12. (Original) The method of claim 1, wherein a user that satisfies said 
verifying computations is allowed to access a plurality of groups . 

13. (Currently Amended) A method for authenticating a user to one or more 
groups, said method comprising the steps of: 

verifying an identity of said user ; and 

verifying a membership of said user with said one or' more groups, 
wherein said verifying steps are performed using a single cr yptographic operation and 
user information stored in a computer file that is local to said user 

14. (Original) The method of claim 1.3, further' comprising the step of 
r egistering said user with at least one of said one or" more gr oups . 

15 (Original) The method of claim 14, wherein said registering step further 
comprises the step of said user and said at least one of said one or more groups 
exchanging a respective identifier. 

16 (Original) The method of claim 15, wherein said user identifier is 
expressed as follows: 

IDj = g* ih mod p, 

where g and xi are randomly generated numbers, and h is a hash function on a random 
number concatenated with information of said user, U. 

17, (Original) The method of claim 15, wherein said identifier of said at least 
one of said one or mor e gr oups is expr essed as follows: 

Gj =g kih modp, 

where g and ki are randomly generated numbers, and h is a hash function on a random 
number concatenated with information of said user , U 

18. (Original) The method of claim 13, wherein said single operation is 
expressed as: 
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G G g n ' !) =Y\lD ig ' , mod p, 

and wherein said user is identified by an identifier, IDs, equal to g X[h mod p, said one or 

more groups are identified by an identifier, Gj, equal to g kih , V(r 9 s)=^ j s l ^r 5 r * s a 

randomly selected wiap value, mod p, g and Xj are randomly generated numbers, h is a 
hash function on a random number concatenated with user information and s\ is obtained 
as follows: 

s^xJi-kfiG mod(/?-l) 

19. (Original) The method of claim 13, wherein said single operation is based 
on the El Gomal public key algorithm. 

20. (Original) The method of claim 13, wherein said single operation 
processes user information stored on a smart card that provides tamper-resistant features. 

21. (Original) The method of claim 13, wherein said single operation 
processes user information stored in a memory of a computer., 

22. (Currently Amended) A system for' authenticating a user to one or more 
groups, said system comprising: 

a memory that stor es computer -r eadable code; and 
a processor operatively coupled to said memory, said processor configured 
to implement said computer -r eadable code, said computer -r eadable code configured to: 
veiify an identity of said user; and 

verify a membership of said user with said one or more groups, wherein 
said verifying computations are performed substantially simultaneously using a single 
cr yptographic operation and user information stored in a computer file that is local to said 
user. 
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23. (Currently Amended) An article of manufacture for authenticating a user 

to one or more groups, comprising: 

a computer readable medium having computer readable code means 
embodied thereon, said computer readable program code means comprising: 

a step to ver ify an identity of said user; and 

a step to verify a membership of said user with said one or' more groups, 
wherein said verifying computations are performed substantially simultaneously using a 
single cryptographic operation and user' information stored in a computer file that is local 
to said user 

24 (Cunently Amended) A system for authenticating a user" to one or more 

groups, said method comprising the steps of: 

a memory that stores computer -readable code; and 

a processor operatively coupled to said memory, said processor configured 
to implement said computer -readable code, said computer -readable code configured to: 

verify an identity of said user; and 

verify a membership of said user' with said one or more groups, wherein 
said verifying steps are performed using a single cr yptographic operation and user 
information stored in a computer file that is local to said user . 

25. (Currently Amended) An article of manufacture for authenticating a user 

to one or more groups, compr ising: 

a computer readable medium having computer readable code means 
embodied thereon, said computer' readable program code means comprising: 

a step to verify an identity of said user; and 

a step to verify a membership of said user with said one or more groups, 
wherein said verifying steps are performed using a single cr yptographic operation and 
user information stored in a computer file that is local to said user 
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